Skip to main content
  • EN

8m32yFOAopRqpJrtBaoHD-arniXnj3muOBz6AqQ2gaFZwvdM66Od8tcCp8YHk_ELFxQ3_eQ2xk_D7YxDNoC8xqdbBrcsQRRVM0tQ9Nf5sxqp2vg_UnQZPrAlVk1I15txHHihdz63vhcEL3ZnuHIrMQQ

Netskope Global Technical Success (GTS)

Use Case - Blocking Emails Destined to Personal Email Accounts

 

Netskope Cloud Version - 118

 

Objective

Blocking Destined Emails to Personal Email Accounts

 

Prerequisite

Netskope CASB Inline license is required

 

Context

To implement measures for blocking emails directed to personal email accounts.

 

Do You Know?

  • As of April 29, 2024, Netskope recognizes 268 cloud applications categorized under ‘Webmail’

Ub04yLtDXT9OpjzPuoVmBCzHiKV7BChspIdECwDibdR4iCZ6Pj9y3oZiLcAqh5wYaiBn6Cyav4ThIdVdGBasrKlrwU-2wJyZGHh--PeVeQdkD5OfouIW8zukiKO-F2tsgjz3Jj7KcXUXmgVnxW1PUu8

 

  • Netskope engines are capable of detecting the sender and recipient when an end-user sends an email

Sender - From User

Recipient - To User

jz1nrjnQun5E5mtkQCpPAUBdf1iJhfdtKVeMGM9qnSn8M-HL8ogRYicWOW61vHVRLLqxbrJRpAnt0tNK7RGMRN8-RQuJoUIjywD1UcDqfJRJ0CVKpVZe-jYqKNX541GvmEGZUcbdVVze6TY9Wc9hpsI

Configuration

Prior to proceeding with the configuration, could you kindly provide answers to the following queries:

  1. What is your official webmail platform?
  2. Do you permit users to access non-official webmail platforms?

 

In the below configuration, I am assuming that the answer to the above questions is 

  1. What is your official webmail platform?

Google Gmail

 

  1. Do you permit users to access non-official webmail platforms?

Yes but the access is restricted

 

In the below example, I am considering Google Gmail is my official webmail platforms

 

  • Step 1 - Instance Tagging

Path - Netskope Tenant UI >>> Skope IT >>> Application Events

Z40gX3iysCjIo5r9dW53JxkhLzO6fBVZEDxvBUMc6wRFQYm-jbQNmSZmrpO84DYHmTTtmJ759K-oJ4ZH7MBS1xXD0Uq5Bl2oGGFfE4pa2EsTbIVZ3cTZjTN9zjbJ_iCMVr9S2R1pm97YAzqhr-8AJ3Q

mS9BH0PH-qeBiW6u2h_qd1LmY50jBQAxHAC2b3-puJlb-EupLAlrCrw8AfyoxYY1P7BV7_Fgj_EaZbcCXSaophoOFcSP0xAM-zlZTijEcgrvSMb1jzot-EffpL0CqI1TnXGD2-0JcnJXUUtsR6ni96M

 

  • Step 2 - Constraint profile

Path - Netskope Tenant UI >>> Policies >>> Profiles - - - Constraints

6neVCJuxv5DyCawCjuoZB_E2-4KKvye9m4isbf5MPRp7Pui_ji7SpKzFg9M6ZnnwLH069A_eri7SYEMyQDGmeYMeRDj5s6dLRCn26E-7otRrPDjvJt9fHQUvBWXlah9NoXYaZ668cXrROcS27Jqj6Ws

 

  • Step 3 - Real-time protection policy

Path - Netskope Tenant UI >>> Policies >>> Real-time Protection >>> New Policy

1st Policy

v4dha0twFKFXdqnjKdowzuJQyCf4SKSABaP2arStxJbjHMbsgeXFUDU0YySSVCwAWEUBsFExWI3FBgqIYQcvJ49aCIVCCPkEAicsqNbaBMcP6rSRwrRQlKdRTA8dcPxzvzIdlTcHdbvq_LWDJ79fibc

 

2nd Policy

8vny1-wd52odBPLkZmTQUVZwo9f2AWYnzA-dSOdUUKU6MDvae2uH-fhTme46QRKstKyPEQFpgOzWK2JWO7cvLy3q8slEdG6PJOY9-X306LHX_9YpLTK4q9w_G_7blxe4zyrO5-qcdy-2jQnoxde5qkg

3rd Policy

eI1NR3ns6XjS4BZdPu_gBx5WlM8irRm5b2HZQv1o2n3k2YPIU3mmLnisJySC1_MV2xsFAn4_UrVgV3_3AFVrMaTLxwa452rfGSimZcmIlTEsLXv14h7sTIBd1mmhpZ-29YyduM2iEUpZQRIWNmjDbmQ

Policy Order

AD53htcuzg1eJBHc1-x3QFS370U9QjyKRTVxrEMjCXxkSUkQpIM7_6g4xTh4M8HeVBJ03QIefmh3bqlZ439GBGWH6il7zRRcPuiu3UYZ0xbjA7fX4vF74Y-FdUzcJeZXSfRcjKcU2bFa3L-n6ywtCJs

 

Verification

  • Step 1 - Sending an email to my personal gmail id

tHsz2skDyrfgEwX7ykKxwH8yBG4OhFejz1qUEWLuWX4WcxwNafDOyqpIa6LbT8OHJzsHmdnirr82YJA809GTm9qISuCW3Vccjbx13YCp-s7n8Y4E0BGfd8lZTiP6QQEUP9Vn2iBgaf9GyvqhMf6tyaA

  • Step 2 - Check policy hits

Q6BeazfyeH6fCXiOpd-97oUlR-CL22QLXDSIQJRLgCIJAr3M_xQbhzTT7S1f-HfTC9vHcKu2kzHmPTuu1mnaljBZzwkFTc0_EJoMJuw3ERK4PdFN-vP0f9Hl2EScTZtCq7_3RiSoIy9CaH-WHQlTG3U

 

Attached Caveats

  • The administrator needs to manually update the constraint list.

 

Terms and Conditions

  • All documented information undergoes testing and verification to ensure accuracy.
  • In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.

 

Notes

  • This article is authored by Netskope Global Technical Success (GTS).
  • For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.

 

Terms & ConditionsCookie settings